SUN REF: P6470US 



WHAT IS CLAIMED IS: 

1. A processing unit connectable to a data communications network, the 
processing unit having a device reader for a portable storage device that 
includes storage operable to supply a network identity for the processing unit 
and an access controller, the access controller being operable to prevent 
unauthorised writing to the storage, the processing unit being operable, before 
reading the network identity from the portable storage device, to attempt a 
write to the storage of the portable storage device, and, on determining that the 
write has failed, to read the supplied network identity. 

2. The processing unit of claim 1, wherein the processing unit is operable, on 
being powered up, to determine whether a said portable storage device is 
present in the device reader and, in the event that a said portable storage device 
is present in the device reader, to attempt a write to the storage of the portable 
storage device, the processing unit being further operable, on determining that 
the write has failed, to copy the supplied network identity from the data carrier 
to the second memory location and to use the supplied network identity. 



3 . The processing unit of claim 1 , wherein the access control logic of the portable 
storage device implements key-to-key encryption, the processing unit being 
operable to modify the content of the storage of the portable storage device by 
supplying a key to the access controller, and, in response to receipt of a return 
key from the access controller, to send an encrypted command to modify the 
content of the storage of the portable storage device. 

4. The processing unit of claim 1, wherein the portable storage device is a smart 
card, the access controller is a microcontroller or a microprocessor, and the 
device reader is a smart card reader. 
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5. The processing unit of claim 1, wherein the network identity comprises a 
MAC address. 

6. The processing unit of claim 1, comprising a service processor, the service 
5 processor being programmed to control reading of the portable storage device. 

7. The processing unit of claim 6, wherein the service processor is a 
microcontroller. 

10 8. The processing unit of claim 1, wherein the processing unit is a server 
computer 

9. The processing unit of claim 1, wherein the processing unit is a rack 
mountable computer server. 

15 

10. A control program for controlling the selection of a network identity for a 
processing unit connectable to a data communications network, the processing 
unit having a device reader for a portable storage device that includes storage 
operable to supply a network identity for the processing unit and an access 

20 controller, the access controller being operable to prevent unauthorised writing 

to the storage, the control program being operable, before reading the network 
identity from the portable storage device, to attempt a write to the storage of 
the portable storage device, and, only on determining that the write has failed, 
to read the supplied network identity. 

25 

11. The control program of claim 10, wherein the control program is operable, on 
the processing unit being powered up, to determine whether a said portable 
storage device is present in the device reader and, in the event that a said 
portable storage device is present in the device reader, to attempt a write to the 

30 storage of the portable storage device, the control program being further 
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operable, on determining that the write has failed, to copy the supplied 
network identity from the data carrier to the second memory location and to 
use the supplied network identity. 

5 12. The control program of claim 10, wherein the access control logic of the 
portable storage device implements key-to-key encryption, the control program 
being operable to modify the content of the storage of the portable storage 
device by supplying a key to the access controller, and, in response to receipt 
of a return key from the access controller, to send an encrypted command to 
1 0 modify the content of the storage of the portable storage device. 

13. The control program of claim 10, wherein the portable storage device is a 
smart card, the access controller is a microcontroller and the device reader is a 
smart card reader. 

15 

14. The control program of claim 10, wherein the network identity comprises a 
MAC address. 



20 



1 5 . The control program of claim 1 0 on a carrier medium. 

16. The control program of claim 10, wherein the processing unit comprises a 
service processor, the control program controlling operation of the service 
processor. 



25 17. The control program of claim 16, wherein the service processor is 
microcontroller. 

18. A microcontroller comprising a control program as recited in claim 10. 
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1 9. A server computer comprising a device reader for reading a portable storage, a 
processor, memory and a microcontroller as recited in claim 18, the 
microcontroller being operable as a service processor and connected to read 
the content of storage in a portable storage device mounted in the portable 

5 storage device. 

20. A method of controlling the selection of a network identity for a processing 
unit connectable to a data communications network, the processing unit having 
a device reader for a portable storage device that includes storage operable to 

10 supply a network identity for the processing unit and an access controller, the 

access controller being operable to prevent unauthorised writing to the storage, 
the method comprising: 

- attempting a write to the storage of the portable storage device; and 

- only on determining that the write has failed, to read the supplied network 
1 5 identity from the portable storage device. 

21. The method of claim 20, comprising, on powering up of the processing unit, 
determining whether a said portable storage device is present in the device 
reader and in the event that a said portable storage device is present in the 

20 device reader, 

- attempting a write to the storage of the portable storage device, and 

- only on determining that the write has failed, copying the supplied network 
identity from the data carrier to the second memory location and using the 
supplied network identity. 

25 

22. The method of claim 20, wherein the access control logic of the portable 
storage device implements key-to-key encryption, the method further 
comprising modifying the content of the storage of the portable storage device 
by supplying a key to the access controller, and, in response to receipt of a 
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return key from the access controller, sending an encrypted command to 
modify the content of the storage of the portable storage device. 

23. The method of claim 20, wherein the portable storage device is a smart card, 
5 the access controller is a microcontroller and the device reader is a smart card 

reader. 

24. The method of claim 20, wherein the network identity comprises a MAC 
address. 

10 

25. A portable storage device that includes storage containing a network identity 
for a processing unit connectable to a data communications network, the 
portable storage device further including an access controller operable to 
prevent unauthorised writing to the storage, access controller being responsive 

15 to an unauthorised attempt to write to the storage to indicate that the write 

access has failed. 

26. The portable storage device of claims 25, further operable to respond to a read 
access to supply the network identity. 

20 

27. The portable storage device of claim 25, wherein the access controller 
implements key-to-key encryption, the access controller including key storage 
holding a stored key, the access controller being operable to compare a 
supplied key from the processing unit to the stored key and, in response to the 

25 supplied key verifying against the stored key, returning to the processing unit a 

return key derived from the stored key. 

28. The portable storage device of claim 27, wherein the access controller is 
subsequently operable to respond to an encrypted command from the 
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processing unit to modify the content of the storage in the portable storage 
device. 

29. The portable storage device of claim 25, wherein the access controller is a 
5 microcontroller. 

30. The portable storage device of claim 25, wherein the portable storage device is 
a smart card. 

10 31. The portable storage unit of 25, wherein the network identity comprises a 
MAC address. 
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